Critical Infrastructure Use Cases – Using Data Diode Cybersecurity to Defend Industrial Control Systems

Critical Infrastructure Use Cases – Using Data Diode Cybersecurity to Defend Industrial Control Systems

The Next Generation of Cybersecurity Solutions

The United States Department of Homeland Security (DHS) defines 16 sectors of critical infrastructure, whose assets, systems, and networks are considered to be vital to the United States such that their debilitation or destruction would have a significant effect on the nation’s security, economy, and/or public health and safety.

The 16 Sectors of Critical Infrastructure

  1. Chemical
  2. Commercial Facilities
  3. Communications
  4. Critical Manufacturing
  5. Dams
  6. Defense Industrial Base
  7. Emergency Services
  8. Energy
  9. Financial Services
  10. Food & Agriculture
  11. Government Facilities
  12. Healthcare & Public Health
  13. Information Technology
  14. Nuclear Reactors, Materials, & Waste
  15. Transportation Systems
  16. Water & Wastewater Systems

This paper outlines 19 use cases for the implementation of Owl data diode cybersecurity to defend a variety of these critical infrastructure sectors. The use cases feature industry leaders and demonstrate how Owl helped them meet a number of security and operational requirements through a one-way, deterministic data flow.

In each of these cases, Owl data diodes are interoperating with a wide array of leading operational technologies, including, but not limited to: OSIsoft® PI System, Schneider Electric Wonderware, GE Historian, Rockwell Automation FactoryTalk®, Modbus, OPC, mobile networks, and software firewalls. Please see the Index at the end of this document for a full list and references for all sectors and technologies included.

           

We hope these use cases provide a good introduction into the capabilities of Owl and some of the ways data diodes can be used to solve today’s cybersecurity issues.


Use Cases:

  1. Global Oil & Gas Company Enables Secure, One-Way Production Data Transfer to HQ
  2. Natural Gas Company Enables Secure Transfer of Production Data to HQ for Remote Monitoring
  3. Gas Turbine Support Vendor Enables Centralized Remote Operation & Maintenance Monitoring
  4. Petrochemical Company Enables Secure, One-Way Production Data Flow to Business IT
  5. Rare Earth Mining Company Secures Operational Network from Advanced Persistent Threats
  6. Water/Waste Water Company Implements DHS Defense-In-Depth Cybersecurity Strategies
  7. Nuclear Power Facility Meets US Nuclear Regulatory Commission Cybersecurity Regulations
  8. Coal Power Facility Meets NERC CIP Version 5 Cybersecurity Regulations
  9. Natural Gas Power Facility Meets NERC CIP Cybersecurity Regulations, Enables Vendor Remote Monitoring
  10. Public Power Authority Meets NRC, NERC CIP Cybersecurity Regulations Across 10 Plants
  11. Power Transmission and Distribution Substations Meet NERC CIP Version 5 Cybersecurity Regulations
  12. National Bank Secures ATM Data Collection via Email at Central Repository Database
  13. Regional US Bank Enables Remote Network Monitoring
  14. Mid-Market National Bank Captures and Collects Forensic Data Files
  15. Regional US Bank Secures Offsite Backup of Transactions and Customer Records
  16. National Commuter Rail Transportation Company Secures Remote Monitoring of Railcars and Track
  17. Healthcare System Secures Research Database of Electronic Medical Records
  18. Secure Remote Monitoring of Video Surveillance and Alarms Enabled at Nuclear Power Facility
  19. National Grid Operator Protects Plants and Secures Remote Monitoring

Critical Infrastructure Use Cases - Using Data Diode Cybersecurity to Defend Industrial Control Systems
DOWNLOAD RESOURCE ↓